Medo App Builder

Security checks across malware telemetry and agentic risk

Overview

This looks like a legitimate Medo app-building skill, but it deserves review because it can use a Medo API key to create, modify, and publish public applications without a clearly required final user confirmation step.

Install only if you are comfortable giving this skill a Medo API key that can create, modify, inspect, generate, and publicly publish apps in your account. Verify the default API endpoint with Medo, use a revocable least-privilege key, avoid storing the key in committed files, and instruct your agent to ask before running generate-app or publish.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Ssd 3

Medium

Confidence: 89% confidence
Finding: The conversation-history feature reconstructs and prints prior conversation content, including file contents and command observations, directly to stdout. In an agent/tooling context, this can expose sensitive prior prompts, embedded secrets, proprietary source, or operational data to any caller with API access, increasing the blast radius of a compromised token or over-privileged workflow.

VirusTotal

67/67 vendors flagged this skill as clean.

View on VirusTotal